quivr/backend/core/auth/jwt_token_handler.py

import os
from datetime import datetime, timedelta
from typing import Optional

from jose import jwt
from jose.exceptions import JWTError
from models.users import User

SECRET_KEY = os.environ.get("JWT_SECRET_KEY")
ALGORITHM = "HS256"

if not SECRET_KEY:
    raise ValueError("JWT_SECRET_KEY environment variable not set")


def create_access_token(data: dict, expires_delta: Optional[timedelta] = None):
    to_encode = data.copy()
    if expires_delta:
        expire = datetime.utcnow() + expires_delta
    else:
        expire = datetime.utcnow() + timedelta(minutes=15)
    to_encode.update({"exp": expire})
    encoded_jwt = jwt.encode(to_encode, SECRET_KEY, algorithm=ALGORITHM)
    return encoded_jwt


def decode_access_token(token: str) -> User:
    try:
        payload = jwt.decode(
            token, SECRET_KEY, algorithms=[ALGORITHM], options={"verify_aud": False}
        )
    except JWTError:
        return None  # pyright: ignore reportPrivateUsage=none

    return User(
        email=payload.get("email"),
        id=payload.get("sub"),  # pyright: ignore reportPrivateUsage=none
    )


def verify_token(token: str):
    payload = decode_access_token(token)
    return payload is not None
Feat/single brain (#215) * feat(llm): update * feat(singlebrain): added new table with user-id * feat(user): get user from email * feat(user_id): added search * ✨ add user_id to most endpoints * docs(readme): new script --------- Co-authored-by: gozineb <zinebe@theodo.fr> 2023-05-31 14:51:23 +03:00			`import os`
feat(auth): now application has authentication (#144) * feat(auth): backend authentification verification * feat(auth): added to all endpoints * feat(auth): added to all endpoints * feat(auth): redirect if not connected * chore(print): removed * feat(login): redirect * feat(icon): added * chore(yarn): removed lock * chore(gitignore): removed 2023-05-24 23:21:22 +03:00			`from datetime import datetime, timedelta`
Feat/single brain (#215) * feat(llm): update * feat(singlebrain): added new table with user-id * feat(user): get user from email * feat(user_id): added search * ✨ add user_id to most endpoints * docs(readme): new script --------- Co-authored-by: gozineb <zinebe@theodo.fr> 2023-05-31 14:51:23 +03:00			`from typing import Optional`

			`from jose import jwt`
feat(auth): now application has authentication (#144) * feat(auth): backend authentification verification * feat(auth): added to all endpoints * feat(auth): added to all endpoints * feat(auth): redirect if not connected * chore(print): removed * feat(login): redirect * feat(icon): added * chore(yarn): removed lock * chore(gitignore): removed 2023-05-24 23:21:22 +03:00			`from jose.exceptions import JWTError`
fix: jwt decode to return user object (#513) 2023-07-05 10:27:58 +03:00			`from models.users import User`
feat(auth): now application has authentication (#144) * feat(auth): backend authentification verification * feat(auth): added to all endpoints * feat(auth): added to all endpoints * feat(auth): redirect if not connected * chore(print): removed * feat(login): redirect * feat(icon): added * chore(yarn): removed lock * chore(gitignore): removed 2023-05-24 23:21:22 +03:00
			`SECRET_KEY = os.environ.get("JWT_SECRET_KEY")`
			`ALGORITHM = "HS256"`

Feat/static analysis (#582) * feat: add static analysis * chore: update Makefile add static analysis script * chore: add vscode extensions recommandations 2023-07-10 15:27:49 +03:00			`if not SECRET_KEY:`
			`raise ValueError("JWT_SECRET_KEY environment variable not set")`

Feat: chat name edit (#343) * feat(chat): add name update * chore(linting): add flake8 * feat: add chat name edit 2023-06-20 10:54:23 +03:00
feat(auth): now application has authentication (#144) * feat(auth): backend authentification verification * feat(auth): added to all endpoints * feat(auth): added to all endpoints * feat(auth): redirect if not connected * chore(print): removed * feat(login): redirect * feat(icon): added * chore(yarn): removed lock * chore(gitignore): removed 2023-05-24 23:21:22 +03:00			`def create_access_token(data: dict, expires_delta: Optional[timedelta] = None):`
			`to_encode = data.copy()`
			`if expires_delta:`
			`expire = datetime.utcnow() + expires_delta`
			`else:`
			`expire = datetime.utcnow() + timedelta(minutes=15)`
			`to_encode.update({"exp": expire})`
			`encoded_jwt = jwt.encode(to_encode, SECRET_KEY, algorithm=ALGORITHM)`
			`return encoded_jwt`

Feat: chat name edit (#343) * feat(chat): add name update * chore(linting): add flake8 * feat: add chat name edit 2023-06-20 10:54:23 +03:00
fix: jwt decode to return user object (#513) 2023-07-05 10:27:58 +03:00			`def decode_access_token(token: str) -> User:`
feat(auth): now application has authentication (#144) * feat(auth): backend authentification verification * feat(auth): added to all endpoints * feat(auth): added to all endpoints * feat(auth): redirect if not connected * chore(print): removed * feat(login): redirect * feat(icon): added * chore(yarn): removed lock * chore(gitignore): removed 2023-05-24 23:21:22 +03:00			`try:`
Feat: chat name edit (#343) * feat(chat): add name update * chore(linting): add flake8 * feat: add chat name edit 2023-06-20 10:54:23 +03:00			`payload = jwt.decode(`
			`token, SECRET_KEY, algorithms=[ALGORITHM], options={"verify_aud": False}`
			`)`
			`except JWTError:`
Feat/static analysis (#582) * feat: add static analysis * chore: update Makefile add static analysis script * chore: add vscode extensions recommandations 2023-07-10 15:27:49 +03:00			`return None # pyright: ignore reportPrivateUsage=none`
Feat: chat name edit (#343) * feat(chat): add name update * chore(linting): add flake8 * feat: add chat name edit 2023-06-20 10:54:23 +03:00
Feat/static analysis (#582) * feat: add static analysis * chore: update Makefile add static analysis script * chore: add vscode extensions recommandations 2023-07-10 15:27:49 +03:00			`return User(`
			`email=payload.get("email"),`
			`id=payload.get("sub"), # pyright: ignore reportPrivateUsage=none`
			`)`
fix: jwt decode to return user object (#513) 2023-07-05 10:27:58 +03:00
Feat: chat name edit (#343) * feat(chat): add name update * chore(linting): add flake8 * feat: add chat name edit 2023-06-20 10:54:23 +03:00
feat: user can create api keys (#329) * feat: user can create api keys * fix: linting on build * Update backend/routes/api_key_routes.py * chore: rename and refactor AuthBearer * chore: add types 2023-06-14 22:21:13 +03:00			`def verify_token(token: str):`
			`payload = decode_access_token(token)`
			`return payload is not None`